You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
... I understand that not following the below instructions will result in immediate closure and/or deletion of my issue.
... I have understood that this bug report is dedicated for bugs, and not for support-related inquiries.
... I have understood that answers are voluntary and community-driven, and not commercial support.
... I have verified that my issue has not been already answered in the past. I also checked previous issues.
Description
Custom NGINX configs are ignored when the mailcow.conf contains additional SANs (`ADDITIONAL_SAN`) and ENABLE_SNI is set to true (`ENABLE_SNI=y`).
Logs:
`docker compose exec -it nginx-mailcow nginx -t`
2025/02/28 11:43:16 [warn] 52#52: protocol options redefined for 0.0.0.0:443 in /etc/nginx/conf.d/listen_ssl.active:1
nginx: [warn] protocol options redefined for 0.0.0.0:443 in /etc/nginx/conf.d/listen_ssl.active:1
2025/02/28 11:43:16 [warn] 52#52: conflicting server name "mta-sts.<domain>.<tld>" on 0.0.0.0:443, ignored
nginx: [warn] conflicting server name "mta-sts.<domain>.<tld>" on 0.0.0.0:443, ignored
2025/02/28 11:43:16 [warn] 52#52: conflicting server name "mta-sts.<domain>.<tld>" on [::]:443, ignored
nginx: [warn] conflicting server name "mta-sts.<domain>.<tld>" on [::]:443, ignored
nginx: the configuration file /etc/nginx/nginx.conf syntax is ok
nginx: configuration file /etc/nginx/nginx.conf test is successful
Steps to reproduce:
Have a custom NGINX config for a domain that is used in `ÀDDITIONAL_SAN` and have `ENABLE_SNI` active.
Workaround (from FreddleSpl0it):
Change the file `data/conf/nginx/templates/nginx.conf.j2` so that the last `include /etc/nginx/conf.d/*.conf;` is above the code block `{% for cert in valid_cert_dirs %}`.
Which branch are you using?
master
Which architecture are you using?
x86
Operating System:
Ubuntu 22.04
Server/VM specifications:
Recommded Setup
Is Apparmor, SELinux or similar active?
no
Virtualization technology:
KVM
Docker version:
28.0.1
docker-compose version or docker compose version:
v2.33.1
mailcow version:
2025-02
Reverse proxy:
Logs of git diff:
-
Logs of iptables -L -vn:
-
Logs of ip6tables -L -vn:
-
Logs of iptables -L -vn -t nat:
-
Logs of ip6tables -L -vn -t nat:
-
DNS check:
-
The text was updated successfully, but these errors were encountered:
Contribution guidelines
I've found a bug and checked that ...
Description
Logs:
Steps to reproduce:
Which branch are you using?
master
Which architecture are you using?
x86
Operating System:
Ubuntu 22.04
Server/VM specifications:
Recommded Setup
Is Apparmor, SELinux or similar active?
no
Virtualization technology:
KVM
Docker version:
28.0.1
docker-compose version or docker compose version:
v2.33.1
mailcow version:
2025-02
Reverse proxy:
Logs of git diff:
Logs of iptables -L -vn:
Logs of ip6tables -L -vn:
Logs of iptables -L -vn -t nat:
Logs of ip6tables -L -vn -t nat:
DNS check:
The text was updated successfully, but these errors were encountered: